CVE-2021-27187
[Suggested description]
The FX Aggregator terminal client by "Sovremennye Delovye Tekhnologii" stores authentication credentials in cleartext in login.sav when the Save Password box is checked.
[VulnerabilityType Other]
CWE-522 Insufficiently Protected Credentials
[Vendor of Product]
OOO Sovremennye Delovye Tekhnologii
[Affected Product Code Base]
Fx-agreggator terminal client - 1
[Affected Component]
affected file "login.sav"
[Impact Information Disclosure]
true
[Has vendor confirmed or acknowledged the vulnerability?]
true
[Discoverer]
Maria Kononova (Jet Infosystems, jet.su)